Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E800CF44349011F1BBBC69F2CE1D38B0.roa
File: E800CF44349011F1BBBC69F2CE1D38B0.roa (raw, json)
Hash identifier: Pke4xDfdjoQIcG7RlBw/Qo/W74gO1RYPsNs3YOVBsKc=
Subject key identifier: E9:46:40:07:77:C4:82:30:3A:E0:A9:2C:8F:9D:F2:F3:77:0C:45:5D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01C447
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E800CF44349011F1BBBC69F2CE1D38B0.roa
Signing time: Fri 10 Apr 2026 03:54:00 +0000
ROA not before: Fri 10 Apr 2026 03:53:55 +0000
ROA not after: Sun 19 Apr 2026 03:53:55 +0000
asID: 32043
IP address blocks: 154.200.8.0/22 maxlen: 24
154.200.12.0/22 maxlen: 24
154.200.16.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 03:53:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115783 (0x1c447)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 10 03:53:55 2026 GMT
Not After : Apr 19 03:53:55 2026 GMT
Subject: CN=69d87458-ef5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:b3:53:d8:85:e0:d3:dd:48:e4:f9:bc:b5:f9:
85:9c:6b:cc:c0:2e:93:ca:b0:cd:e9:2a:63:63:4e:
1f:5b:66:ff:0a:08:e5:eb:89:92:8c:89:c8:44:97:
a3:66:9f:7b:b1:6a:8e:4a:74:3f:74:d8:3d:ce:36:
a8:45:d1:5a:1c:10:06:7f:cc:a1:1c:cc:24:29:ca:
70:12:0e:2d:a9:f6:d3:2e:16:2d:5b:6e:47:cc:5b:
fe:01:3a:3d:1b:a9:96:84:70:0d:e7:93:de:83:f5:
df:ef:bb:40:d0:f4:f5:16:c9:e4:45:31:70:56:f2:
69:10:7b:b3:b2:8d:09:32:43:93:66:c1:d3:db:b2:
9f:1d:b5:dd:ef:0c:58:02:88:1c:0a:54:91:fd:f1:
b7:ef:fb:5a:60:ba:da:aa:8f:d5:32:44:49:d0:6b:
e4:d5:0d:d4:be:6c:38:b6:00:1f:ca:a9:df:25:45:
59:b6:75:06:88:ef:89:9a:7c:a9:ee:a1:36:06:72:
25:af:e1:34:9c:7c:d7:a4:93:60:28:50:37:d3:65:
b7:eb:9f:e2:b7:1a:57:d1:fa:b2:a6:8f:fe:e4:2e:
32:c6:67:b8:8f:ba:d2:b6:7a:2c:92:34:50:ee:91:
07:ee:e6:ed:64:52:d2:f4:13:1b:f8:7d:ef:bc:aa:
a2:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:46:40:07:77:C4:82:30:3A:E0:A9:2C:8F:9D:F2:F3:77:0C:45:5D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E800CF44349011F1BBBC69F2CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.200.8.0-154.200.17.255
Signature Algorithm: sha256WithRSAEncryption
3d:71:d1:99:2a:30:31:56:a9:f5:8f:24:0d:2f:ce:f3:9e:d3:
88:56:c9:ca:2e:04:8b:f6:14:d5:a9:1e:a5:83:d3:cd:72:b5:
ce:a4:1b:e9:fc:06:40:1a:c5:2a:b1:2e:0b:65:c0:7c:20:26:
49:9c:48:33:94:ca:ec:fd:86:04:50:8c:45:05:cf:1f:8c:75:
a6:1a:22:7e:fc:84:7c:de:e4:d4:db:74:4a:3a:78:43:6c:61:
1d:26:db:6a:0b:5b:dd:45:41:2b:8e:20:35:64:28:18:ba:e7:
7c:0e:7c:30:62:3a:5e:85:40:cf:20:4c:c0:ca:ff:d6:a7:5f:
74:46:ad:f9:95:8e:80:df:71:15:09:a4:33:b1:fd:9b:35:1f:
98:51:43:26:af:bb:3f:fb:44:b3:f7:c6:34:e4:ed:8d:73:df:
ea:ba:3c:d7:0d:e2:64:0e:b2:75:db:3b:12:36:5a:cf:70:5c:
de:0b:01:43:7e:26:32:a4:03:2b:5c:38:8e:42:21:1f:b0:bb:
8f:4c:99:c2:e1:33:91:73:e1:ce:3b:8f:ba:81:e9:db:41:6a:
66:68:4e:88:41:8e:00:d6:6e:93:5d:8c:60:dc:3e:8b:db:32:
4c:f9:ba:be:93:bd:ff:84:f8:58:aa:cb:fb:56:e2:b8:06:a1:
08:00:8f:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 10:25:38 2026 by rpki-client